Issue
Compliance score calculations
Release
The below compliance score calculations are applicable from 20.x.x version of GRC: Policy and compliance management plugin.
Resolution
1. Profile score compliance score calculation
- Compliance score based on controls. "sn_compliance.entity_hierarchy_based_scoring" property is set to false.
- If the system property “sn_compliance.cal_score_by_weighted_control” is set to true.
(Summation of weights of all the compliant standard and common controls associated with the entity) / Summation of weights of all the controls
- If the system property “sn_compliance.cal_score_by_weighted_control” is set to true.
-
- If the system property “sn_compliance.cal_score_by_weighted_control” is set to false.
(Count of all the compliant standard and common controls associated with the entity) / Count of all the controls
- If the system property “sn_compliance.cal_score_by_weighted_control” is set to false.
- Compliance score based on downstream entities and controls. "sn_compliance.entity_hierarchy_based_scoring" property is set to true.
- (Average of downstream entities compliance score + Compliance score based on controls) / 2
2. Policy statement compliance score calculation
- (Average of child policy statements score + Average of all the controls score) / 2
3. Profile type compliance score calculation
- Average of compliance scores of all the profiles under it.
4. Policy compliance score calculation
- (Average of all child policies score + Average of all the immediate policy statements score) / 2